Reputation: 6482
Secure asp.net core 2.0 webapi with Identityserver3
I am completely new to Identityserver and authorization.
There is an authorization server build using Identityserver3. It works fine with asp.net mvc 5 application.
Now i am trying to use this authorization server to secure the new asp.net core 2.0 webapi.
I couldn't find any good document about how to do this. Can anyone help how to do achieve this?
Thanks
Upvotes: 0
Views: 815
Answers (1)
Reputation: 3166
The same way as you will do it if you use IdentityServer 4. In your .NET Core 2.0 Web API, in the Startup.cs :
public class Startup
{
public void ConfigureServices(IServiceCollection services)
{
services.AddMvcCore()
.AddAuthorization()
.AddJsonFormatters();
services.AddAuthentication("Bearer")
.AddIdentityServerAuthentication(options =>
{
options.Authority = "<identityserverurl>";
options.RequireHttpsMetadata = false;
options.ApiName = "mynetcoreapi";
});
}
public void Configure(IApplicationBuilder app)
{
app.UseAuthentication();
app.UseMvc();
}
}
and of course you need IdentityServer4.AccessTokenValidation package, but it is a .NET Core package, so you shouldn't have any problems.
PS: Don't forget to setup logging (if it is not already done) in your IdentityServer. Helps a lot
Upvotes: 1
Related Questions
- Secure API with IdentityServer and C#
- IdentityServer4 as Web API
- .NET Core Api authentication using Identity server 4
- asp.net core 3 and identityserver4
- Asp.Net Core 3 Web API Identity
- Add Asp.net Core Identity to an API secured with Identity Server
- Authorization with Asp.Net Core WebAPI
- How to use identityserver3 in asp.net core 2.0 webapi to validate token from Identityserver3 server
- IdentityServer 4 as a web API
- WebAPI & IdentityServer on ASP.NET Core Project